CVE-2021-44790
Possible buffer overflow when parsing multipart content in mod_lua of Apache HTTP Server 2.4.51 and earlierA carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier.
We have discovered 952,430 live websites that are affected by CVE-2021-44790.
Affected Software
| Product |  Apache |
| Category | Web Servers |
| Vulnerable Domains | 952,430 live websites (34% of Apache install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 43 versions ( 36% of all versions) |
Common Weakness Enumeration
CWE-787 Out-of-bounds WriteDetails
- Published - Dec 20, 2021
- Updated - Aug 4, 2024
Credits
- Chamal
- Anonymous working with Trend Micro Zero Day Initiative
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2021-44790 United States | 289,602 websites |
 Germany | 96,611 websites |
 France | 57,706 websites |
 Japan | 42,168 websites |
 Russia | 39,465 websites |
 Italy | 34,093 websites |
 Netherlands | 33,146 websites |
 Singapore | 27,398 websites |
 Czech Republic | 26,946 websites |
 Canada | 25,640 websites |
Website Distribution by TLD
Number of websites using CVE-2021-44790| .com | 361,095 websites |
| .de | 56,715 websites |
| .org | 43,009 websites |
| .net | 37,155 websites |
| .ru | 34,615 websites |
| .it | 30,863 websites |
| .nl | 24,330 websites |
| .cz | 22,335 websites |
| .pl | 18,745 websites |
| .jp | 18,572 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2021-44790
Top websites that are affected by CVE-2021-44790. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *******.com | Singapore | *** | |
| *************.***.****.****.************.net | United States | *** | |
| *********.net | United States | *** | |
| ***.****.us | United States | *,*** | |
| ***.*********.com | Singapore | *,*** | |
| *****.*******.com | Singapore | *,*** | |
| ******************.com | United States | *,*** | |
| ****.*********.net |  GB | *,*** | |
| *******.org | United States | *,*** | |
| ****.com | United States | *,*** |
FAQ
CVE-2021-44790 is Out-of-bounds Write in Apache
A total of 952,430 websites have been identified as vulnerable to CVE-2021-44790, based on global website indexing conducted by WebTechSurvey.
The Apache is affected by the CVE-2021-44790 vulnerability.
Apache versions up to and including 2.4.51 are vulnerable to CVE-2021-44790.
References
- http://httpd.apache.org/security/vulnerabilities_24.html
- http://www.openwall.com/lists/oss-security/2021/12/20/4
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFSWOH4X77CV7AH7C4RMHUBDWKQDL4YH/
- https://www.debian.org/security/2022/dsa-5035
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://security.netapp.com/advisory/ntap-20211224-0001/
- https://www.tenable.com/security/tns-2022-01
- https://www.tenable.com/security/tns-2022-03
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGWILBORT67SHMSLYSQZG2NMXGCMPUZO/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z7H26WJ6TPKNWV3QKY4BHKUKQVUTZJTD/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X73C35MMMZGBVPQQCH7LQZUMYZNQA5FO/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://support.apple.com/kb/HT213257
- https://support.apple.com/kb/HT213256
- https://support.apple.com/kb/HT213255
- http://seclists.org/fulldisclosure/2022/May/33
- http://seclists.org/fulldisclosure/2022/May/35
- http://seclists.org/fulldisclosure/2022/May/38
- https://security.gentoo.org/glsa/202208-20
- http://packetstormsecurity.com/files/171631/Apache-2.4.x-Buffer-Overflow.html